pkgsrc-Changes archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]

CVS commit: pkgsrc/emulators/suse100_libcups



Module Name:    pkgsrc
Committed By:   obache
Date:           Wed Sep  3 09:26:13 UTC 2008

Modified Files:
        pkgsrc/emulators/suse100_libcups: Makefile distinfo

Log Message:
Bump suse100_libcups to 4.
From cups-libs from 1.1.23-21.6 to 1.1.23-21.16.

21.8:
By keeping a partially negotiated SSL connection open an
attacker could prevent the cups server from accepting other
requests (CVE-2007-0720).

21.10:
The previous cups update (CVE-2007-0720) was incomplete and
could lead to cupsd crashing.

21.12:
A buffer overflow in the xpdf code contained in cups could
be exploited by attackers to potentially execute arbitrary
code (CVE-2007-3387).

21.14:
A missing length check in the IPP implementation of cups
could lead to a buffer overflow. Attackers could exploit
that to potentially execute arbitrary code with root
privileges (CVE-2007-4351).

21.16:
A buffer overflow in the xpdf code contained in cups could be
exploited by attackers to potentially execute arbitrary code
(CVE-2007-4352, CVE-2007-5392, CVE-2007-5393).


To generate a diff of this commit:
cvs rdiff -r1.5 -r1.6 pkgsrc/emulators/suse100_libcups/Makefile
cvs rdiff -r1.2 -r1.3 pkgsrc/emulators/suse100_libcups/distinfo

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.



Home | Main Index | Thread Index | Old Index